 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.14733 |
| Category: | CGI abuses |
| Title: | PerlDesk File Inclusion |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is running PerlDesk, a web based help desk and email management application written in perl. There is a file inclusion issue in the remote version of this software which may allow an attacker to read fragments of arbitrary files on the remote host and to execute arbirary perl scripts, provided that an attacker may upload a script in the first place. Solution : Upgrade to the latest version of this software Risk factor : Medium |
| Cross-Ref: |
BugTraq ID: 11160 Common Vulnerability Exposure (CVE) ID: CVE-2004-1678 http://www.securityfocus.com/bid/11160 Bugtraq: 20040912 Posible Inclusion File in Perl Desk (Google Search) http://marc.info/?l=bugtraq&m=109509026406554&w=2 http://secunia.com/advisories/12512 XForce ISS Database: perldesk-directory-traversal(19712) https://exchange.xforce.ibmcloud.com/vulnerabilities/19712 |
| Copyright | This script is Copyright (C) 2004 Tenable Network Security |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |